CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

30 matches found

EUVD-2026-40026

A vulnerability was determined in YzmCMS up to 7.5. This affects an unknown function of the file /application/install/index.php. Executing a manipulation of the argument siteurl can lead to sql injection. The attack can be executed remotely. A high complexity level is associated with this attack...

6.3CVSS5.8AI score

Exploits0References5

RedhatCVE•added 2026/01/09 10:55 a.m.•4 views

CVE-2022-23888

YzmCMS v6.3 was discovered to contain a Cross-Site Request Forgey CSRF via the component /yzmcms/comment/index/init.html...

8.8CVSS7.5AI score0.0082EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:54 a.m.•6 views

CVE-2022-23384

YzmCMS v6.3 is affected by Cross Site Request Forgery CSRF in /admin.add...

8.8CVSS7AI score0.00535EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:32 a.m.•9 views

CVE-2019-16532

An HTTP Host header injection vulnerability exists in YzmCMS V5.3. A malicious user can poison a web cache or trigger redirections...

6.1CVSS7.2AI score0.01221EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2018-11524

Malware in sbrugna...

4.8CVSS5.1AI score0.00486EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-15156

Malware in sbrugna...

6.1CVSS6.3AI score0.00724EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-2299

Malware in sbrugna...

6.8CVSS6.7AI score0.00497EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•7 views

EUVD-2018-12593

Malware in sbrugna...

8.8CVSS8.8AI score0.00523EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•8 views

EUVD-2019-7206

Malware in sbrugna...

6.1CVSS6.3AI score0.01221EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-11025

Malware in sbrugna...

5.4CVSS5.5AI score0.00524EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2018-19370

Malware in sbrugna...

6.1CVSS6.2AI score0.08861EPSS

Exploits5References5

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2019-18941

Malware in sbrugna...

4.8CVSS5.1AI score0.0067EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-21715

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00388EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•7 views

EUVD-2022-28813

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.0082EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 9:37 a.m.•9 views

CVE-2024-24291

An issue in the component /member/index/login of yzmcms v7.0 allows attackers to direct users to malicious sites via a crafted URL...

6.1CVSS6.1AI score0.00388EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 3:55 p.m.•8 views

CVE-2020-20341

YzmCMS v5.5 contains a server-side request forgery SSRF in the grabimage function...

7.5CVSS7AI score0.01317EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:50 p.m.•7 views

CVE-2020-19949

A cross-site scripting XSS vulnerability in the /link/add.html component of YzmCMS v5.3 allows attackers to execute arbitrary web scripts or HTML...

4.8CVSS6AI score0.0057EPSS

Exploits1

RedhatCVE•added 2025/05/22 8:57 a.m.•7 views

CVE-2019-9570

An issue was discovered in YzmCMS 5.2.0. It has XSS via the bottom text field to the admin/systemmanage/save.html URI, related to the sitecode parameter...

4.8CVSS5.8AI score0.0067EPSS

Exploits1References1

NVD•added 2025/04/08 2:15 a.m.•8 views

CVE-2025-3397

A vulnerability classified as problematic has been found in YzmCMS 7.1. Affected is an unknown function of the file message.tpl. The manipulation of the argument gourl leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may...

6.1CVSS0.00424EPSS

Exploits1References5

Vulnrichment•added 2025/04/08 1:31 a.m.•6 views

CVE-2025-3397 YzmCMS message.tpl cross site scripting

5.3CVSS6.2AI score0.00424EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by